Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-02-16 | CVE-2007-0971 | Scripts Multiple Input Validation vulnerability in Jupiter CMS Jupiter CMS 1.1.5 Multiple SQL injection vulnerabilities in Jupiter CMS 1.1.5 allow remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header and certain other HTTP headers, which set the ip variable that is used in SQL queries performed by index.php and certain other PHP scripts. | 7.5 |
2007-02-16 | CVE-2007-0970 | SQL-Injection vulnerability in WebTester Multiple SQL injection vulnerabilities in WebTester 5.0.20060927 and earlier allow remote attackers to execute arbitrary SQL commands via the testID parameter to directions.php, and unspecified parameters to other files that accept GET or POST input. | 7.5 |
2007-02-16 | CVE-2007-0967 | Products Multiple Remote Denial Of Service vulnerability in Cisco Firewall Services Module 3.1 Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.1) allows remote attackers to cause a denial of service (device reboot) via malformed SNMP requests. | 7.8 |
2007-02-16 | CVE-2007-0966 | Products Multiple Remote Denial Of Service vulnerability in Cisco Firewall Services Module 3.1 Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.11), when the HTTPS server is enabled, allows remote attackers to cause a denial of service (device reboot) via certain HTTPS traffic. | 7.8 |
2007-02-16 | CVE-2007-0965 | Products Multiple Remote Denial Of Service vulnerability in Cisco Firewall Services Module 3.1 Cisco FWSM 3.x before 3.1(3.2), when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service (device reboot) via a long HTTP request. | 7.8 |
2007-02-16 | CVE-2007-0963 | Products Multiple Remote Denial Of Service vulnerability in Cisco Firewall Services Module 3.1 Unspecified vulnerability in Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.3), when set to log at the "debug" level, allows remote attackers to cause a denial of service (device reboot) by sending packets that are not of a particular protocol such as TCP or UDP, which triggers the reboot during generation of Syslog message 710006. | 7.8 |
2007-02-16 | CVE-2007-0962 | Products Multiple Remote Denial Of Service vulnerability in Cisco products Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when "inspect http" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic. | 7.8 |
2007-02-16 | CVE-2007-0961 | Products Multiple Remote Denial Of Service vulnerability in Cisco Cisco PIX 500 and ASA 5500 Series Security Appliances 6.x before 6.3(5.115), 7.0 before 7.0(5.2), and 7.1 before 7.1(2.5), and the FWSM 3.x before 3.1(3.24), when the "inspect sip" option is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed SIP packets. | 7.8 |
2007-02-16 | CVE-2007-0959 | Products Multiple Remote Denial Of Service vulnerability in Cisco Cisco PIX 500 and ASA 5500 Series Security Appliances 7.2.2, when configured to inspect certain TCP-based protocols, allows remote attackers to cause a denial of service (device reboot) via malformed TCP packets. | 7.8 |
2007-02-15 | CVE-2007-0324 | Buffer Overflow vulnerability in Lizardtech Djvu Browser Plug-In 6.0/6.0.1/6.1 Multiple buffer overflows in the LizardTech DjVu Browser Plug-in before 6.1.1 allow remote attackers to execute arbitrary code via unspecified vectors. | 7.5 |